Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/oNBl6psQg_GMIfXbln6OULbDRKQ.roa
File: oNBl6psQg_GMIfXbln6OULbDRKQ.roa (raw, json)
Hash identifier: V6ZWclsEvfTEVue8SEmRP2gw3p2329l8AaCJJHK1BBs=
Subject key identifier: A0:D0:65:EA:9B:10:83:F1:8C:21:F5:DB:96:7E:8E:50:B6:C3:44:A4
Certificate issuer: /CN=7b7645c8328f39afcdd079fa54a0ba3be78d4287
Certificate serial: 018894A43E600D99CA58C0CC34C4AA19A8E6
Authority key identifier: 7B:76:45:C8:32:8F:39:AF:CD:D0:79:FA:54:A0:BA:3B:E7:8D:42:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e3ZFyDKPOa_N0Hn6VKC6O-eNQoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/oNBl6psQg_GMIfXbln6OULbDRKQ.roa
Signing time: Wed 07 Jun 2023 06:56:11 +0000
ROA not before: Wed 07 Jun 2023 06:56:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 193.35.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:a4:3e:60:0d:99:ca:58:c0:cc:34:c4:aa:19:a8:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b7645c8328f39afcdd079fa54a0ba3be78d4287
Validity
Not Before: Jun 7 06:56:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0d065ea9b1083f18c21f5db967e8e50b6c344a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fa:7f:5f:af:d8:13:01:e2:7b:b8:1b:e9:88:
30:3e:1a:c1:8f:b8:b3:ba:79:2b:86:b0:fc:03:5b:
c8:45:90:73:76:24:a6:49:5c:fe:e6:53:49:b1:35:
18:57:36:5b:fa:f3:c2:69:93:e5:f1:50:54:43:6b:
66:2c:a7:88:d0:a0:c8:28:80:27:e6:86:65:97:e3:
e1:1b:77:2b:26:62:80:c0:5f:43:65:26:2d:32:15:
cc:2d:27:9e:8b:f2:be:fd:f2:b0:ce:c9:46:02:28:
d2:a8:2d:94:27:2a:a1:b8:36:ae:44:be:8e:27:13:
f8:8a:0d:c1:82:29:d8:38:96:4c:0c:cb:61:52:02:
ca:4c:6f:83:dd:3b:6a:69:f0:b4:ef:7c:78:1c:30:
20:d7:47:b5:80:27:10:dd:76:23:e9:40:40:78:d3:
69:db:c8:2b:a5:81:0e:03:e9:d0:5c:74:47:5e:9d:
3e:84:8a:b8:20:4d:9a:1d:b3:b7:df:79:a1:26:63:
fd:ce:47:11:66:9b:50:08:49:f0:6b:77:b3:e9:0f:
f8:60:a0:58:a6:2a:7c:d4:5f:15:c1:86:f1:21:95:
16:47:d2:a0:f4:73:cb:5e:a6:3b:a1:67:4e:2e:26:
70:5e:7e:d1:16:20:42:59:26:c6:2e:65:5b:4d:f6:
5a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D0:65:EA:9B:10:83:F1:8C:21:F5:DB:96:7E:8E:50:B6:C3:44:A4
X509v3 Authority Key Identifier:
keyid:7B:76:45:C8:32:8F:39:AF:CD:D0:79:FA:54:A0:BA:3B:E7:8D:42:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3ZFyDKPOa_N0Hn6VKC6O-eNQoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/oNBl6psQg_GMIfXbln6OULbDRKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/deeb1f-1f35-4c61-ab30-cbfa17e326fb/1/e3ZFyDKPOa_N0Hn6VKC6O-eNQoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.228.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:b5:0b:23:97:c3:3d:15:b3:62:61:bb:31:5a:dc:12:66:4c:
c7:a1:a8:ee:f8:eb:50:d2:9d:16:a7:88:9f:1d:f3:31:73:2b:
67:4a:30:66:2a:6d:4d:47:e6:2d:df:df:10:72:d9:f4:65:09:
6c:9e:50:6e:04:3b:a6:ce:09:0e:20:ff:6b:0f:5b:b9:6e:63:
76:83:20:a5:ce:61:c6:11:47:c2:27:b2:7f:3e:27:a9:c6:ed:
aa:fe:0e:67:3f:fe:2e:0f:6c:cc:40:3c:3d:1d:2e:8d:0f:8a:
8c:ed:55:8e:3e:6f:5e:e7:f3:ce:f3:4e:84:99:c8:3c:5e:49:
48:00:8d:f5:6f:90:eb:e2:01:ca:70:f7:0f:4f:7b:55:d4:05:
42:8a:5d:c6:22:be:70:6a:9b:8a:07:04:75:8c:e9:38:12:9b:
b7:76:88:9e:05:7b:24:74:cb:0e:45:54:18:35:cf:2b:36:b4:
c4:ee:59:5a:26:e1:3e:73:1a:49:85:e2:93:cd:13:6c:a5:47:
aa:8e:fe:8f:69:88:fb:a2:91:d8:07:d9:58:50:82:db:d7:77:
ef:16:27:53:65:e8:e5:a9:6d:90:5e:4b:87:2b:15:de:1b:59:
4a:a5:fd:f3:97:64:b5:dc:dd:d3:1d:22:b4:9e:48:68:48:1c:
64:33:f0:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org